Movemates — Privacy Policy
Effective Date: October 17, 2025
Last Updated: October 17, 2025
This Privacy Policy explains how Brink 13 Labs, LLC ("Brink 13 Labs," "we," "us," or "our"), a Tennessee limited liability company, collects, uses, discloses, and protects information about you when you use the Movemates iOS application (the "App") and related services (collectively, the "Services"). Movemates helps runners find partners and organize group runs ("Moves").
Movemates is offered in the United States via the Apple App Store. You must be 18 years or older to use the Services.
Quick summary (not a substitute for the full policy): We collect the information you provide (e.g., name, age, gender, location, runner profile, photos, and Move details); and technical data (e.g., device and usage data, crash logs, and push tokens). We use this to operate the App, match runners, host profiles and chat, send notifications, and keep the platform safe. We use Firebase to host data in the U.S. We do not sell or "share" your personal information for cross-context behavioral advertising. You can access, correct, or delete your data. Promotional emails can be opted out at any time. Questions? contact@movemates.app.
1) Scope & Controller
- Controller: Brink 13 Labs, LLC, Nashville, Tennessee, USA.
- Coverage: This Policy applies to the App and any in-App or email communications we send.
- Third parties: This Policy does not apply to third-party websites/services you may access through the Services (e.g., Strava profiles) or to Apple's App Store.
2) Information We Collect
A. Information You Provide
- Account & Profile: first and last name; email (via authentication); date of birth (stored and used to calculate/display age); gender; bio; interests; running data (pace, weekly mileage, commitment level, preferred running times); favorite shoes; goals; upcoming races; profile photos (stored in Firebase Storage); optional Strava profile URL.
- Discovery & Preferences: city and state, plus latitude/longitude representing the city centroid (not precise GPS); search filters; gender visibility preferences; profile visibility.
- Moves: event title, activity type (run/walk/run-walk), distance, date/time, location addresses and map coordinates, notes, RSVPs/attendance.
- Messaging: direct messages and group chats for Moves (see retention below).
- Premium Status: subscription tier, expiration date, auto-renew status, source (App Store/promo/admin).
B. Information Collected Automatically
- Device & App Data: device model, OS version, app version, language, time zone, system settings, and device identifiers (e.g., App Instance ID). IP addresses may be logged by our hosting provider (Firebase/Google Cloud) in standard server access logs.
- Usage & Analytics: feature usage, screens viewed, taps, session duration, referral/attribution data, crash reports and diagnostics.
- Security Signals: Firebase Authentication user ID, App Check tokens (App Attest/DeviceCheck), and related security metadata.
- Push Tokens: for notifications via Firebase Cloud Messaging (FCM).
C. Location Data
- We do not track or store your continuous/precise GPS location. However, if you grant location permission, we may access your current device location to show you nearby runners and sort results by distance. This location is used only on your device and is never stored on our servers.
- You provide your city (either by granting location permission for automatic detection or by manual selection) and we store the city-level coordinates (latitude/longitude) to compute approximate distances for matching and discovery.
- Locations for Moves are stored as coordinates and addresses you select.
D. Sources of Data
- You (through in-App forms and settings).
- Your device (through the App).
- Apple (subscription validation).
- Firebase services (analytics, crash logs, security signals).
- Optional: links you post (e.g., Strava URL).
3) How We Use Information
We process personal information to:
- Provide and operate the Services (profiles, discovery, matching, Moves, messaging, notifications).
- Personalize results (e.g., show nearby runners by city and compatible preferences).
- Facilitate subscriptions (verify Premium status; manage entitlements; handle grace periods).
- Safety, moderation, and compliance (detect, prevent, and address fraud, abuse, violations of our Terms or Community Guidelines, and legal requests). This includes processing user reports submitted via the in-app Report User feature, which collects information about both the reported user and the reporting user.
- Improve and develop features, performance, and usability (analytics, A/B tests, diagnostics).
- Communicate with you (transactional messages about accounts, Moves, safety notices, updates, policy changes).
- Marketing (with your consent where required): limited promotional emails/push; you may opt-out.
4) Legal Bases (where applicable)
While Movemates is U.S.-focused, if you use the Services from outside the U.S., you consent to processing in and transfer to the U.S. We rely on your consent, our legitimate interests in providing and improving the Services and safety, and contract performance.
5) How We Share Information
We may disclose information to:
- Service Providers/Processors: Firebase (Authentication, Firestore, Storage, Cloud Messaging, App Check) and Google Cloud hosting; analytics/diagnostics; email/push providers; content moderation vendors; customer support tools. These parties process data under instructions and appropriate safeguards.
- Apple: for subscription validation and billing; Apple processes payments subject to Apple's terms and privacy notices.
- Other Users: your chosen profile information, photos, age (derived), city, preferences, and content you post (including in Moves and chat) are visible according to your settings and the App's functionality.
- Law Enforcement/Legal: when required by law, court order, or to protect rights, safety, property, and to enforce our Terms.
- Business Transfers: in connection with a merger, acquisition, asset sale, financing, or similar event; we will provide notice and choices where required.
We do not sell your personal information and we do not "share" it for cross-context behavioral advertising as those terms are defined under California law.
6) Retention
- Account Data: kept while your account is active.
- Chat History: All messages are stored indefinitely. Free users can view messages from the last 30 days only. Premium users can view their full message history. If you downgrade from Premium to Free, messages older than 30 days will be hidden from your view but remain stored in our systems. Re-upgrading to Premium restores access to all historical messages.
- Moves & RSVPs: retained as necessary to operate the Services; past Move metadata may be archived.
- Backups/Logs: limited-time backups and server logs are kept for security, continuity, and compliance.
- Deleted Accounts: we delete or de-identify personal data within a reasonable period, subject to legal retention requirements and backup cycles.
7) Your Choices & Rights
- Profile Controls: edit your profile information at any time. Profile visibility is controlled at the profile level—you cannot hide individual fields (e.g., specific photos or running metrics) while keeping your profile visible. You can choose whether to show your profile in search, set which genders can see your profile, block users, and report violations using the in-app Report User feature.
- Communications: opt out of push notifications via device settings (transactional messages may still be sent as required for service functionality).
- Access/Correction/Deletion: Account deletion requests are handled by our support team and processed within 30 days. Submit requests via the in-app button or by emailing contact@movemates.app. We may require verification.
- California Privacy Rights (CCPA/CPRA): California residents may request (1) to know/access specific pieces and categories of personal information, (2) correction, (3) deletion, and (4) information about disclosures for business purposes. We do not sell/share personal information. We do not use or disclose sensitive personal information for purposes beyond those permitted by law. You may designate an authorized agent to make requests on your behalf. We will respond within statutory timeframes.
- Shine the Light: We do not disclose personal information to third parties for their own direct marketing.
Notice at Collection for California Residents
| Category |
Examples |
Source |
Business Purpose |
Disclosed to |
Retention |
| Identifiers |
name, email, user ID, device IDs, IP |
you; device |
account creation; authentication; security; notifications |
service providers (hosting, analytics); Apple (subscriptions) |
life of account + backups |
| Personal characteristics |
date of birth (age), gender |
you |
profile; matching; visibility controls |
other users (per settings); service providers |
life of account |
| Geolocation (approx.) |
city, state; city-level lat/long |
you |
discovery/matching by city; distance estimates |
other users (per settings); service providers |
life of account |
| Internet/Device activity |
usage analytics; crash logs |
device |
improve and secure Services |
service providers |
rolling logs/diagnostics windows |
| User content |
photos, bio, messages, Move details |
you |
social features; chat; Moves |
other users (per feature); service providers; moderation vendors |
per feature; chat per plan; archives |
| Commercial info |
subscription tier, status |
Apple; us |
entitlements; customer support |
Apple; service providers |
life of account |
We do not provide financial incentives for the sale or retention of personal information as defined by California law.
8) Cookies/SDKs & Do Not Track
We do not use traditional web cookies in the App. We use SDKs (e.g., Firebase) that may collect device and usage information to provide analytics, messaging, and diagnostics. The App does not respond to "Do Not Track" signals; mobile OS privacy settings may offer relevant controls.
9) Security
We use technical and organizational safeguards appropriate to the nature of the data, including: TLS encryption in transit; Firebase Authentication; App Check with App Attest/DeviceCheck; Firestore security rules; access controls and monitoring. No method of transmission or storage is 100% secure.
10) Children
Movemates is for adults (18+) only. We do not knowingly collect personal information from anyone under 18. If we learn we have collected data from a minor, we will delete it. Report concerns to contact@movemates.app.
11) International Users
The Services are offered in the U.S. If you access from outside the U.S., you understand your information will be transferred to and processed in the United States, where laws may differ from those in your country.
12) Third-Party Links & Services
Links to third-party sites/services (e.g., Strava profiles) are provided for convenience. Their privacy practices are governed by their own policies, not this Policy.
13) Breach Notification
If we discover a security incident affecting your personal information, we will take steps to investigate, mitigate harm, and notify you and/or authorities as required by applicable U.S. law.
14) Changes to this Policy
We may update this Policy from time to time. When we do, we will revise the "Last Updated" date and, where required, provide additional notice (e.g., in-App prompt).
15) Contact Us
Brink 13 Labs, LLC
Email: contact@movemates.app
(You may also contact us through in-App support, if available.)